First published: Wed Jun 21 2023(Updated: )
A type confusion issue was addressed with improved checks. This issue is fixed in iOS 16.5.1 and iPadOS 16.5.1, iOS 15.7.7 and iPadOS 15.7.7, macOS Ventura 13.4.1, Safari 16.5.1. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.
Credit: product-security@apple.com product-security@apple.com product-security@apple.com
Affected Software | Affected Version | How to fix |
---|---|---|
Apple Safari | <16.5.1 | 16.5.1 |
Apple iOS | <16.5.1 | 16.5.1 |
Apple iPadOS | <16.5.1 | 16.5.1 |
Apple macOS Ventura | <13.4.1 | 13.4.1 |
ubuntu/webkit2gtk | <2.40.3 | 2.40.3 |
ubuntu/webkit2gtk | <2.40.4-0ubuntu0.22.04.1 | 2.40.4-0ubuntu0.22.04.1 |
ubuntu/webkit2gtk | <2.40.4-0ubuntu0.23.04.1 | 2.40.4-0ubuntu0.23.04.1 |
ubuntu/webkit2gtk | <2.40.3-1 | 2.40.3-1 |
debian/webkit2gtk | <=2.36.4-1~deb10u1<=2.38.6-0+deb10u1 | 2.42.2-1~deb11u1 2.42.5-1~deb11u1 2.42.2-1~deb12u1 2.42.5-1~deb12u1 2.42.5-1 |
debian/wpewebkit | <=2.38.6-1~deb11u1<=2.38.6-1 | 2.42.5-1 2.42.5-1.1 |
Apple Safari | <16.5.1 | |
Apple iPadOS | <15.7.7 | |
Apple iPadOS | >=16.0<16.5.1 | |
Apple iPhone OS | <15.7.7 | |
Apple iPhone OS | >=16.0<16.5.1 | |
Apple macOS | >=13.0<13.4.1 | |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2023-32439 is high with a severity value of 8.8.
CVE-2023-32439 is a type confusion vulnerability in Apple Multiple Products WebKit that can lead to arbitrary code execution when processing maliciously crafted web content.
CVE-2023-32439 affects multiple Apple products including iOS, iPadOS, macOS Ventura, and Safari.
CVE-2023-32439 is fixed in iOS 16.5.1 and iPadOS 16.5.1, iOS 15.7.7 and iPadOS 15.7.7, macOS Ventura 13.4.1, and Safari 16.5.1. It is recommended to update to these versions.
You can find more information about CVE-2023-32439 on the Apple support website at the following URLs: [URL 1](https://support.apple.com/en-us/HT213811), [URL 2](https://support.apple.com/en-us/HT213813), [URL 3](https://support.apple.com/en-us/HT213814).